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Abstract. The search for an expressive calculus of datatypes in which 
canonical algorithms can be easily written and proven correct has proved 
to be an enduring challenge to the theoretical computer science commu¬ 
nity. Approaches such as polynomial types, strictly positive types and 
inductive types have all met with some success but they tend not to 
cover important examples such as types with variable binding, types 
with constraints, nested types, dependent types etc. 

In order to compute with such types, we generalise from the traditional 
treatment of types as free standing entities to families of types which 
have some form of indexing. The hallmark of such indexed types is that 
one must usually compute not with an individual type in the family, but 
rather with the whole family simultaneously. We implement this simple 
idea by generalising our previous work on containers to what we call 
indexed containers and show that they cover a number of sophisticated 
datatypes and, indeed, other computationally interesting structures such 
as the refinement calculus and interaction structures. Finally, and rather 
surprisingly, the extra structure inherent in indexed containers simplifies 
the theory of containers and thereby allows for a much richer and more 
expressive calculus. 


1 Introduction 

Why Indexed Containers? The search for an expressive calculus of datatypes 
in which canonical algorithms can be easily written and proven correct has 
proved to be an enduring challenge to the theoretical computer science com¬ 
munity. Ideally we want a calculus of datatypes which allows generic algorithms 
such as searching, traversal and differentiation to be written. This calculus should 
cover as many examples of datatypes as possible so that the generic algorithms 
can be applied widely, but should exclude types such as jiX.{X — > 2) —» 2 which 
do not support such algorithms. Approaches such as polynomial types, strictly 
positive types and inductive types have all met with much success but they tend 
not to cover important examples such as types with variable binding, types with 
constraints, nested types, dependent types etc. 




In previous work, we introduced the concept of containers ([3], [4], and [2]) 
as a theory of datatypes based upon the metaphor that datatypes consist of 
shapes and positions where data can be stored — pathological examples such 
/jlX.{X —> 2) —> 2 are therefore excluded. Consequently, the large number of 
algorithms whose essence is the manipulation of shapes and positions can be 
uniformly written for containers. Examples of such algorithms are traversal, 
searching and differentiation. Unfortunately, while delivering generic algorithms, 
containers suffer from the same problem of limited expressivity as strictly posi¬ 
tive types etc. 

This paper seeks to address this problem by generalising the traditional treat¬ 
ment of types as free standing entities to families of types which have some form 
of indexing. To understand this idea, consider the inductive type List(X) of lists 
of X. It is clear that the definition of List(X) does not require an understanding 
of List(F) for for any F / X. Since each instance List(X) is, in isolation, an 
inductive type we consider List to be a family of inductive types. In contrast, 
consider the following definition of the Nat-indexed type Fin[n] of finite sets 

0 : Fin[n +1] x : Fin[n] 

'S{s) : Fm[»fTJ. 

Similarly one could consider the Nat-indexed type Lam(n) of A-terms [19,8,13] 
by means of the following introduction rules. 

i : Fin[n] / : Lam[n] a : Lam[n] b : Lam[n + 1] 

Var(i) : Lam[n] App(/, a) : Lam[n] Abs(6) : Lam[n] 

Here, the type Lam[n] consists of untyped A-terms up to a-equivalence with free 
variables drawn from { Var(O),..., Var(n — 1) }. Note that in Abs(6), the bound 
variable is Var(O). The key point in both of these examples is that, unlike the 
case with lists, the type Fin[n] and the type Lam[n] cannot be defined in isola¬ 
tion with recourse only to the elements of Fin[n] and Lam[n] that have already 
been built. Rather we need elements of the type Fin[n] to build elements of 
Fin[n + 1] and, similarly, elements of the type Lam[n + 1] to build elements of 
the type Lam[n]. In effect, the Nat-indexed families Fin[n] and Lam[n] have to 
be inductively built up simultaneously for every n and thus we have an inductive 
family of types rather than a family of inductive types. 

These kinds of indexed datatypes are becoming increasingly important. Of course, 
one can define them in a dependently typed programming language or they can 
be approximated using nested types or GADTs in Haskell. However, these ap¬ 
proaches by themselves do not highlight the shapes and positions metaphor 
which, as remarked above, is crucial for defining many generic algorithms. Thus 
it is natural to try to combine the shapes and positions metaphor of containers 
with the expressivity of indexed families of datatypes. Such indexed containers 
consist of containers with additional indexing information detailing the the in¬ 
dexes that each shape can target, and for each input position indication of how 




the input’s type should be indexed, which index a piece of data to be stored there 
must come from. As we will comment on later, indexed containers are a serious 
candidate to be used as the theory of datatypes in the programming language 
Epigram. We hasten to add that these indexed containers have been previously 
studied by Hyland and Gambino [20] under the name of dependent polynomials 
— see the section on related research for more details. 

This kind of indexing information is actually very natural and is already widely 
used in many sorted algebra. In such a setting, each operator is assigned an out¬ 
put sort and, for each operand position, the sort of the expression that is required 
in that position is given. For instance, in the following two sorted signature 

if : Bool x Int x Int —> Int zero : Int 

succ : Int —> Int eq : Int x Int —> Bool 

not : Bool —> Bool or : Bool x Bool —> Bool 

the if-operator produces something of sort Int and has three input positions re¬ 

quiring data of sort Bool, Int and Int respectively. More surprisingly, indexed 
containers encompass a number of other computationally interesting examples 
which go well beyond examples driven by intuition based upon datatypes with 
shapes and positions. Indeed, in section 7.3, we show how interaction structures 
and the refinement calculus can be simply analysed with indexed containers. 

Our Contributions: This paper develops the concept of indexed containers. 
In detail, we provide 

— A definition of indexed containers and their semantic extensions as functors 
over slice categories. 

— A new grammar of indexed strictly positive types which forms a calculus of 
indexed containers. We prove a completeness theorem for this grammar. 

— A collection of operations such as differentiation, monoidal closure and modal 
operators which are definable as operations on indexed containers. 

— A notion of morphism between indexed containers. We prove that they are 
in bijective correspondence with the natural transformations between con¬ 
tainers. 

— A different notion of morphism based upon simulation arising from interac¬ 
tion structures. 

— Applications to i) the semantics of datatypes as in Epigram-, ii) interaction 
structures; and iii) the refinement calculus 

This paper is designed to be read as a set theoretic, type theoretic and categor¬ 
ical development of the theory of indexed containers so the paper can be read 
by as wide an audience as possible of those interested in program construction. 
By working in the category of Sets, readers can follow our arguments, construc¬ 
tions and examples without needing a categorical or type theoretic background. 
However, to ensure our constructions are valid in any standard model of a pro¬ 
gramming language the paper is written using type theory and category theory. 




There are occasions when the one presentation is simpler than the other and 
hence, by use of an internal language linking the two, we can enjoy the best, and 
avoid the worst, of both worlds. 

Formally, the internal language links the extensional type theory MLW-EXT 
(see[7]) with finite types, IT-types, a proof true ^ false (but without universes) 
to locally cartesian closed categories with disjoint coproducts and initial algebras 
of container functors in one variable. Categorically, we follow standard practise 
and represent an /-indexed family by an arrow / : X —> / which we think of 
mapping every element of X to its index. Type theoretically, we represent an 
/-indexed family by a judgement i : I - X[i] Type — henceforth we omit the 
Type annotation. Given such an /, its representation in type theory is the 
judgement i : I \~ f[i] where /[*] is defined to be Ex : X.f(x) = i. On the 
other hand, give a type theoretic /-indexed family i : I h X [i], its representation 
categorically is the function 7r 0 : (Hi : I-X[i]) ■—* /. Note the use of round 
brackets to denote function application and square brackets to denote the fibre 
over an index. We often define an /-indexed family / by giving, for each i, the 
fibre /[*] and note that an indexed family / is equivalent to the indexed family 
Si : /./['<]. More details of the internal language, and its interpretation in the 
category of Sets are given in the appendix. 

The structure of the paper is as follows. Section 2 briefly recapitulates the 
notion of unindexed containers, and their extension as endofunctors. Section 3 
contains definitions of containers indexed over given input and output types, 
their extensions as functors between slice categories over those types, and the 
three basic forms of endofunctor from which they are composed. Section 4 gives 
a grammar of indexed strictly positive types, and establishes that it is both 
sound and complete with respect to indexed containers. (The treatment of fixed 
points is postponed to section 6.) Section 5 turns to morphisms between indexed 
containers with given index types, and defines a notion that precisely captures 
natural transformations between their extensions, thus extending the representa¬ 
tion theorem for unindexed containers established in previous papers. In section 
6 we treat fixed points (both initial algebras and terminal coalgebras) for in¬ 
dexed containers, completing the semantics for the calculus of indexed strictly 
positive types begun in section 4. Section 7 considers applications: firstly to the 
foundations of the dependently typed programming language Epigram, and sec¬ 
ondly to the refinement calculus and finally to the specification of imperative 
interfaces, such as may be required for modules written in Epigram to interact 
with modules written in other languages. Finally, in sections 8 and 9 we com¬ 
ment on related research, and those respects in which we have gone further, and 
remark on some possibilities for further research. 

2 A Brief History of Containers 

Containers capture the idea that concrete datatypes consist of memory locations 
where data can be stored. For example, any element of the type List(X) of lists 
of X can be uniquely written as a natural number n given by the length of the 



list, together with a function {0,_n — 1} —> X which labels each position 

within the list with an element from X: 

n : Nat h / : {0 ... n — 1} -► X . 

We think of the set {0,..., n — 1} as n memory locations while the function / 
attaches to each of these memory locations the data to be stored there. To avoid 
commitment to any specific semantic domain, we are led to consider datatypes 
which are given by shapes S and, for each s : S, a type of positions P[s]. 
Definition 1 (Container). A container S <\ P consists of a S-indexed family 
P. That is, either a judgement s : S \~ P[s] or an arrow f : P —» S. 

This definition does not restrict us to the category of sets but is designed to be 
interpreted in any locally cartesian closed category, as well as certain forms of fi- 
bration such as comprehension categories or models of Martin-Lof type theory [5, 
2,1]. Nevertheless, if the reader wishes, he/she can work in Sets and regard a 
container as a set of positions S, and for each s : S, a set of positions P[s]. 
As suggested above, lists can be presented as a container with shapes Nat and 
positions n : Nat b Fin[n]. 

The extension of a container is an endofunctor on the underlying LCCC 
defined as follows: 

Definition 2 (Extension of a Container). Let S < P be a container. Its 
extension, is the functor Ts<jp defined by 

T S <p{X) = Es:S. P[s] -> X 

Set theoretically, an element of Ts<ip(X) is thus a pair (s, /) where s : S' is a 
shape and / : P[s] —> X is a labelling of the positions over s with elements from 
X. Note that Ts<ip(X) really is a functor since its action on a map g : X Y 
sends the element (s,f) to the element (s,g- /). Thus for example, the extension 
of the container for lists is the functor mapping X to Sn : Nat.Fin[n] —> X - 
such pairs clearly bijectively correspond to lists. 

The theory of containers was developed in a series of recent papers [5,2,1] which 
showed that containers encompass a wide variety of types, as they are closed 
under various type forming operations such as sums, products, constants, fixed 
exponentiation, (nested) least fixed points and (nested) greatest fixed points. 
Therefore containers provide an algebraic treatment of strictly positive types. 
The generalisation to indexed containers aims to go further and develop the 
meta-theory required to compute with the much larger and more expressive 
class of inductive families of types. 

3 Indexed Containers 

An agreeably straightforward notion of a indexed container is that of a container 
S < P together with an assignment of an index sort for each shape, and an 
assignment of an index sort to each input position in that shape. 






Definition 3 (Indexed Containers). If I and 0 are input sorts and output 
sorts respectively, an (I, O)-indexed container ( S , P, q, r) : IC(/, O ) is given type 
theoretically by judgements 

I- S s:S h P[s] 

q : S O r:(Ss: S.P[s]) -> I 

or (alternatively) categorically as a container f : P —> S together with indexing 
information given by arrows q : S —> O and r : P —> I. 



'I I® 

/ O 


The Nat-indexed families Fin and Lam we met in the introduction arise as 
fixed points of indexed containers (S F ,P F ,q F ,r F ) and (,SP Pl, qt,, tt) defined 
as follows: 

Example 4 (Fin and \-terms). There are two ways of producing an element of 
type Fin[n+1]. The first (corresponding to the constructor 0) requires no input, 
while the second (corresponding to the constructor S) requires one input indexed 
by n. Thus we set 

S F [n + 1] = (0, S} P F [n+ 1,0] =0 P F [n +1,S] =1 
q F (n + l,~) = n + 1 r F (n + 1,0, -}:= ! r F (n + 1, S, *) — n 

A similar analysis for A-terms suggests defining 

S L [n] = Fin[n] + (App, Abs} q L (n, -) = n 

P L [n,i] =0 P L [n, App] =2 P L [n. Abs] =1 

r/,(n, L —) = ! ri,(n, App, a;) = n rz,(n, Abs,*) = n+1 

Next, we give the extension of an indexed container as a functor. Since the inputs 
are /-sorted and the outputs are O-sorted, this extension will map /-indexed 
families to O-indexed families as follows 

Definition 5 (Extension of an Indexed Container). Let ( S , P, q, r) : IC(/, O ) 
be an indexed container. Its extension is the functor [5, P, q, r] : C// —> C/O 
whose action on objects maps an I-indexed family k to the O-indexed family 
whose fibre at o : O is given by 

{S,P,q,rj k o = Es : S. qs = o A lip : P[s], fe[r(s,p)] 

The action of [S', P, q , r] on morphisms is analogous to that for containers. 

Set theoretically, this definition says that to produce an element of [S, P, q, r] k 
which is indexed by o, we must pick a shape that will produce something of type 
o and then assign to every input position of that shape, a piece of data from k 



whose input type is that expected by r. Presented categorically, the extension 
of an indexed container takes on the following particularly simple and elegant 
form which highlights the fact that the extension of an indexed container is the 
composite of simpler functors: 

c/i At » c/p J§| c/s C/O 

That the type theoretic and categorical definitions agree is proven by translating 
the categorical definition into the internal language. This shows the following 

Lemma 6. Let f : I —> I'. Then the reindexing functor Af and its left and right 
adjoints Sf and Ilf are extensions of the indexed containers (id : I —> I, id, f), 
(id : I —> I, f, id) and (f : I —> V, id, id) respectively. 

In summary, indexed containers can easily be seen as embellishments of con¬ 
tainers with indexing information. Apart from making the concept of a indexed 
container straightforward, this metaphor of indexing has the practical benefit 
that much of the technical development of indexed containers can be inherited 
from that for containers. Formally, a container S < P can be considered as a 
indexed container with 7=0 = 1 with q and r being the unique maps into 1. 
In the other direction, if (S, P, q, r) is a indexed container, there is an obvious 
‘forgetful’ functor which forgets the indexing information, leaving the underlying 
container S c P. There is another embedding of a container S <i P as an indexed 
container (S,P,id,\) : IC(1, .S') which records the shape information as the in¬ 
dex. This can be useful on occassions, — for example when specifying zip to 
work on lists of equal length, or operations on matrices (13). Indexed Containers 
of this form have one shape for every output index and hence can be thought of 
as indexed reader monads as they just read data into the positions. 

4 Indexed Strictly Positive Types 

Surprisingly the grammar of indexed strictly positive types which we use to 
generate indexed containers is very different from that of strictly positive types 
which plays the analogous role for containers. While strictly positive types consist 
of nested fixed points of polynomial functors built from sum and times, indexed 
strictly positive types are based around nested fixed points of reindexing A f and 
its left and right adjoints Sf and Ilf. 

Definition 7 (Indexed Strictly Positive Types). If I and O are input and 
output sorts respectively, the indexed strictly positive types (ISPTs,) from I to O 
are denoted ISPT(7, 0) and are defined in Figure 1. 

We shall see that all ISPTs define indexed containers and hence that ISPTs 
represent functors over slice categories. Because fixed points are inherently more 
complex, we treat them in a separate section and so define ISPT 0 (7, 0) to be 
those T : ISPT(7, 0) which do not contain any fixed points. 




k : X —> O 

Id : ISPT(0, 0) K k : ISPT(/,0) 


f-.O'^O T : ISPT(7, 0) 
At I ISPT(I O') 


A : ISPT(/, O) B : ISPT(7, 0) 
Tag AB : ISPT (I,O + O) 


f-.O^O' T : ISPT(7, 0) 
■EfT : ISPTj&O') 


T : ISPT(7 + O, O) T : ISPT(7 + O, O) f : O -» O' T:ISPT(7,0) 

pT : ISPT(7,0) 1/7’: ISPT(7,0) ’ yfr/T : I$m£&') i 


Fig. 1 . Indexed Strictly Positive Type 


Lemma 8. Every T : ISPT 0 (/, O) defines a functor [T] : C/I —* C/O which is 
the extension of an indexed container in IC (1,0) 

Proof. We go through the cases. Id : ISPT 0 (O,O) represents the identity func¬ 
tor on the slice category C. This is the extension of the indexed container 

o ■*% o id > o '''► o 

Next, K k : ISPTof/, O) represents the constant k- valued functor which is the 
extension of the indexed container 

i> ! o x o 

For a tagged sum Tag A B : ISPT 0 (/, O + O ), let [A] be the extension of 
the indexed container (/a : Pa &Ai Qa?$a) and [BJ be the extension of the 
indexed container (/« : Pb —► Sb, Qb+'b)- Then 

[Tag A B]k [ini o] = [A] [o] [Tag A B] k [inr o] = [Bj [o] 

This is the extension of the indexed container 

/ P A + P B ^5- S A + O + O 

For AfT : ISPT 0 (/, O'), let [T] be the extension of the indexed container 
(S, P, q,r). Then [A/T] represents the functor A/.[T] which maps an /-indexed 
family k to the O'-indexed family with the following fibres 

lAfT\k[o'\ = (A f .lTj)k[o'} = lT\k[fo'] 

Thus [A/T] is the extension of the indexed container (S' ,P' ,q' ,r') defined by 

S'[o'] =S(fo'] P'[o',s\ =P[s] 

q'(o',s) = o' r'((o',s),p) = r(s,p) 

For EfT : ISPT 0 (/, O'), let [T] be the extension of the indexed container 
(/ : P —> S,q,r ). Then {EfT] represents the functor T/.[T] which maps an 
/-indexed family k to the O'-indexed family with the following fibres 

[EfTj k [o'] = (T/-P1) k [o'] = Eo : O.f o = o' x [T] k o 




Thus [17/ T] is the extension of the indexed container 

O' 

Finally, for 17/T : ISPT 0 (/, O'), let [T] be the extension of the indexed con¬ 
tainer ( S,P,q,r ). Then [17/ T] represents the functor 17/. [T] which maps an 
/-indexed family k to the O'-indexed family with the following fibres 

[17/T] k [o'] = (17/.[T]) k [o'] = 17o : 0.(fo = o') —*■ [T] ko 
Thus [17/ T] is the extension of the indexed container (S ', P' ,q' ,r') defined by 

S'[o'] = (17o : O) (fo = o') —> 5[o] 

P'(o',g\ = (Eo:0) (E q : f o = o') P(g(o,q)\ 

q'(o',g) = o' 

r'((o',g),(o,q,p)) = r(g(o,q),p) 

Although appearing minimal at first, a whole host of other operators such as 
sums, products, fixed exponentials and composition are definable for ISPTs and 
hence for indexed containers 

Lemma 9. ISPTos are closed under sums, products, fixed exponentials and 
composition. 

Proof. Let A and B be two ISPT 0 s. Then the coproduct [A] + [£?] is represented 
by the ISPT 0 17 [id, id] (Tag A B), while the product [A] x \B] is represented by 
II[id,id\ (Tag A B). If AT is a fixed object, then the fixed exponential K —> [A] 
is represented by TJti\ (Att-i A). 

To prove that [A] - [B} is represented by an ISPT 0 , use induction on the structure 
of A. For example, if A = 17/A', then 

[17/ A'] • [B} = (17/ • [A']) • [B] = Bf ■ ([A'] • [B]) 

By induction, [A'J • [£] is represented by an ISPT we are done. Other cases are 
similarly easy. 

We have already seen that ISPTos are indexed containers. Now we can prove the 
reverse and thereby lift the closure properties of ISPT 0 s to indexed containers - 
this forms a completeness theorem in that all indexed containers can be defined 
as ISPTos. 

Lemma 10. The grammar for ISPT qs is complete in that all indexed containers 
are ISPTos. Further, indexed containers are closed under composition. 

Proof. Every indexed container has an extension of the form S q ■ Ilf ■ A r . Each 
of these composites are clearly ISPT 0 s and, since ISPT 0 s are closed under 
composition, the indexed container is representable by a ISPT 0 . The composite 
of two indexed containers is thus representable as the composite of two ISPT 0 s 
which is therefore given by an ISPTq and hence an indexed container. 



Note that the ISPT constructors Tag, A, E and 17 act upon the output. A 
natural question is why we do not have similar constructors to act upon the input 
of a container. The composition theorem provides the answer to this question 
by ensuring that constructors to act on the input are already definable. Thus, 
to summarise, indexed containers and ISPTs define the same class of functors 
over slice categories. However, the former give a closed algebraic form of such 
functors as a triple of arrows, while the latter give a calculus for building indexed 
containers. 

5 Categories of Indexed Containers 

What are the interesting notions of morphism between indexed containers, with 
the same sets I, O of input and output sorts? We clearly want to capture natural 
transformations between the extensions of the indexed containers in the same 
way that we did for containers. A natural set theoretical definition is that an 
indexed container morphism from (S, P, q, r) to (S', P', q', r') is a container mor¬ 
phism (S, P) (S', P') between the underlying containers that preserves the 
sorting information. This intuition provides the basis for the folloing definition. 

Definition 11. Given sets I and O, a morphism between indexed containers 
from (S,P,q,r) to (S',P',q',r') is given by 

— Underlying Morphism: A container morphism ( u , /} of plain containers from 
(S,P) to (S',P'). That is, a pair ofu:S—>S' and a reindexing morphism 
f :ns: S.P'lus] P[s] 

— Output index preservation: q' ■ u= q : S —> O 

— Input index preservation: (II s : S,p: P'[«s]) r'(us,p) = r(s, f(s,p)) 
Categorically, these conditions amount to the following diagrams commuting. 

P' [us] 1±+ P[a] 

r '(A-)J /(A~) 

I = I 

This definition of indexed container morphisms means that, for each I and O, the 
indexed containers IC(/, O) form a category. The representation theorem of [4,1] 
says that there is a full and faithful functor from the category of containers and 
container morphisms to the category of endofunctors on C and natural transfor¬ 
mations. In other words, morphisms between containers correspond bijectively 
to natural transformations between their extensions. Note the generalisation to 
indexed containers is not an immediate generalisation of the bijection between 
container morphisms and their extensions as we cannot appeal to Yoneda. 

Lemma 12. There is a full and faithful embedding [—] : IC(/, O ) —► [C/I, C/0\. 
That is, there is a bijection between natural transformations between the exten¬ 
sions of indexed containers and indexed container morphisms. 




Since naturality is straightforward, we concentrate on the bijection. A natural 
transformation between indexed containers [/ : S —* P,q,r ] and [/' : S' —> 
P r ,q', r']. Then, for every /-indexed family k, there is a map in C/O 

E q n f A r k ^ (IS',P',q',r'l)k 

Using the adjointness E q H Aq, this gives a map 

n f A r km - A q (lS',P',q',r']k ) 

Now, we choose k to be r \ P —> I and note that the identities over P form a 
cone over P —> r I <— r P and hence the universal property of the pullback A r r 
gives a map 6 P : idp —> Apr. Noting that idp is the terminal object in C/P, we 
can apply Ilf to S p and then compose with the transpose of a r above to give a 
map in C/S 

ids -m n f A r 'f^4~A q (lS',P',q',r'}r) 

Since any map h : f —> g in a slice category is equivalent to one of the form 
77s : S.f[s] —> g[s], we thus have a term of type 

77s : S.id s [s] — A q (lS',P , ,q , ,r'}rm 

IIs:S.A q (lS',P',q',r']r)[s} 

ns-.S.[S',P',q',r'jP[q S } 

ns : S.Es' : S'.q' s'= qs A 77p' : P'[s'\P[r'(s',p')] 

Eu : S —> S'.ns : S.q'(us) = qs A T/p' : P'fusj.Pfr^MSjp')] = 

Eu : S —» S'.ns : S.q'(us) = qs A T/p' : P'[us].Ep : P[s].r(s,p) = r'(us,p') = 

Eu : S —> S'.ns : S.q'(us) = qs A 

Ef : P'[us] - P[s].77p' : P'[us\.r(s, f p') = r'(us,p') 

which produces exactly an indexed container morphism as required. 

In the reverse direction, note we can follow the chain of equalities backwards. 
That is, given a u and / as above, we create for every /-indexed family k, and 
arrow a k : 77jZ\ r fc —> A q (lS', P ', q ', r'}k) in C/S by setting 

otkS(j) = ( us,(/>') where <j>'(p') = 4>(f p') 

The bijection between container morphisms and natural transformations is very 
useful for practical reasoning as it allows us to reduce problems concerning poly¬ 
morphic functions to problems concerning arithmetic on shapes and positions, 
for an clear example see the proof that reversing a list twice returns the original 
list [4]. More substantially, in the AI field, containers seem to be exactly the 
right notion to increase the expressive power of Bundy’s ellipses [14] notation 
and to generalise ellipses from lists to other data structures. Similarly, we now 
give an example of reasoning with indexed container morphisms. 







Example 13 (Matrix Transposition is involutive). Let M m , n (X) be the Nat x 
Nat-indexed family of m by n matrices which store data of type X. For every 
m and n, there is only one shape of matrices which contains Fin[m] x Fin[n] 
locations for data of type X. Thus such matrices are defined by the indexed 
container M : IC(l,Nat x Nat) as follows 

S = Nat x Nat q =id 

P[m, n] = Fin[m] x Fin[n] r(m, n, —) = ! 

For each type X, matrix transpose should have type M rnn {X) —> M nqm (X) and 
is represented by the indexed container morphism which sends the shape (m, n) 
to the shape (n, m) and a position (j, k) : Fin[m] x Fin[n] to the position (k,j) : 
Fin[n] x Fin [to]. This is clearly and idempotent operation. While appearing overly 
simple, it is worth noticing that the simplicity is due to the presence of indexing 
information and the shapes and positions metaphor - formalisms lacking these 
concepts typically have to reinvent them and the proofs can quickly become 
cumbersome. 

6 Fixed Points 

We show how to construct initial and terminal coalgebras for indexed contain¬ 
ers. We start with a non-parameterized construction, which in the case of initial 
algebras can be found in [20]. We observe that the construction dualizes, i.e. also 
works for terminal coalgebras. We extend this to a parameterized construction 
of initial algebras, which uses a modality 0 on trees constructed using non- 
parameterized initial algebras. The parameterized construction also dualizes. 
Consequently, this gives parameterized initial algebras and terminal coalgebras 
of all indexed containers — this allows us to interpret the corresponding con¬ 
structors for ISPTs. We provide sketch proofs but defer the detailed verification 
that the constructed objects have the required universal properties to the jour¬ 
nal version of this work. 

We first construct the least fixpoint of a non-parameterized container (S , P, q, r) : 
IC (0,0), that is an O-indexed family fi(S, P, q, r) : C/O which is the carrier of 
the initial [S, P, q, r]-algebra. Clearly, the initial algebra of the underlying con¬ 
tainer S <a P is Ws<ip. Our task is to select those trees in Ws<p which respect 
the typing constraints of q and r. That is, we must ensure that at every node the 
index of the shape stored there must be what is expected. Thus, we construct 
p(S, P, q, r) [o] = Xw : Ws<\p-Goo(\ q r [(io, o)] as a subobject of Ws<\p by defining 
an indexed family Good,,., : C/(Ws<p) x O. First, define functions by primitive 
recursion over W$gp: 


ideal r : lFs<p —* O —» Ws x o<a wo p 
actual, : Ws<iP —> WsxO<ia jto p 



by 

ideal r (sup s /) = Ao.sup (s, o) (Ap.ideal, (fp) ( r (s,p))) 
actual, (sup s /) = sup (s, q s) (Ap.actual, (fp)) 

ideal, calculates a tree with labels assigned to subtrees by r, while actual, assigns 
a label to each node in the tree based upon q. Good,,, holds if both relabelled 
trees agree: 

Good,,, [( w ,o)] = (ideal, wo= actual, w) 

Categorically, this corresponds to an equalizer. 

We have shown in [4] that we can construct Mg^p that is the terminal coal¬ 
gebra of the extension of S < P using only W-types via an internal limit con¬ 
struction. Given this, we can construct v(S, P,q,r) :CjO which is the carrier of 
the terminal [5, P, q, r]-coalgebra by modifying the construction given above: we 
define v(S, P, q, r) [o] = Sw : Ms<\p. Good',,, [(tu, o)] as a subobject of Ms<tp. We 
observe that the recursive equations defining ideal, and actual, are also guarded 
and hence give rise to 

ideal', : Mgop —* O —* Msxo<a„ 0 p 
actual', : Ms<iP —> MsxO<a„ 0 p 
and we can define as above: 

Good',,, [(to,o)] = (ideal', wo= actual', w) 

An example for the non-parameterized initial algebra construction is the defini¬ 
tion of the modality OR: C/Ws<ip given R: C/S which will turn out to be useful 
for the parameterized case. Intuitively, 0 R ['«'] corresponds to the proof-relevant 
interpretation of the predicate that R holds for some shape s : S in the tree 
w : Ws<p■ OR is the initial algebra of 



r °| 


Ws<p H'.s'oP 

where 

S 0 = A7sup s f : W S<P .R [a] + P [s] 

P<>[(u;,inrp)] = l 
Po [(^,inlp)] = 0 
r 0 (sup sf,p) = fp 

Type-theoretically 0 R : C/Ws<\p is given inductively by the following construc¬ 
tors: 


r : Rs p : P s d:QR(fp) 

stop r 0 R (-mp & /) step p d 0 R (sup s f) 



In general inductive and coinductive definitions may be nested and hence we need 
a more general, parameterized, version of initial algebras and terminal coalgebras 
of indexed containers than that afforded by the non-parameterised case. That is, 
given an indexed container ( S,P,q,r ) : IC(7 + 0,0 ) and whose extension is a 
functor C/(I+0) —> C/O or isomorphic ally F : C/7 —> C/O —> C/O, we construct 
an indexed container p( SP ,,, g ;t , r /4 ) : IC(7, 0) such that P, q, r)] g is the 
initial [S', P, q, r] ^-algebra for every g : C/I. To calculate the shapes S ;J and 
output indexing function q fl of the least fixed point, note that we need not 
consider the parameterisation by I. Hence, we partition P into positions above 
I and O, say P = Po + Pi with indexing functions rj,ro and then define S /t 
and q fl to be the non-parameterised least fixed point of the following container: 

d inr d , d / c 

t'o —*- ‘ o + i r —*■ * 
ro\ \q 

O O 

We still have to construct the /-indexed family of positions given by P M and the 
map r f , : P ;J —> I. Intuitively, P ;i is given by calculating for each node in the 
tree, the positions Pi at that node. Hence we set 

P„[(w,g)] = 0Pi[w] 

Note here that g is the proof that w is a good tree arising from the non- 
parameterised initial algebra construction. Finally, define r ;) : II (w, —) : S /4 .<) P\ w -4 
I using derivable primitive recursion over 0 Pi [iu]: 

r M (sups/,fif) (stop pi) = r/pi 
?V(sup s /, g) (steppo d) = r M (/p 0 , g') d 

where g' is obtained from g by noting that any branch of a good tree is good. 
This finishes the construction of the parameterized initial algebra. 

The parameterized terminal coalgebra is constructed analogously, i.e. use the 
non-parameterised final coalgebra construction to calculate S v = v{S, Po, q, ro) ■ 
C/O, and notice that the inductive definition of 0 also works for Ms<,p giving 
rise to O' P e C/MSP for R : C/S. However, note that ()' is still constructed as 
an initial algebra reflecting the fact that paths in a potentially infinite tree are 
inductively given. Hence the definition of r' by primitive recursion also works in 
the terminal coalgebra case. 

Finally, we finish by completing the treatment of ISPTs. Note that we wanted 
to prove that the composition of ISPTs was an IS but only did that for those 
ISPTs which contained no fixed points. We now rectify that situation 

Lemma 14. ISPTs are closed under composition. 

Proof. Consider the case of a composition [p,F ■ G] where F : ISPT(7 + 0,0 ) 
and G : ISPT(F, I). Notice that 

lpF-Gj = plF\-lG + id 0 j 




where G+ido : IC(/ / + 0,1' + O) is the obvious extension of G. By induction, 
[F] • [G + ido\ i s ^e extension of an ISPT and hence so is pF ■ G. 

As a result the proofs at the end of section 4, lift to all ISPTs. 


7 Applications 

7.1 Indexed Containers in Epigram 

One motivation for studying indexed containers is that they offer a straightfor¬ 
ward foundation for inductive families [18], the key data structures supported 
by our dependently typed functional programming language Epigram [33]. As 
things stand, Epigram accepts inductive definitions which conform to the syn¬ 
tactic criteria for strict positivity set out by Luo [31], but indexed containers 
have the potential to yield a much more flexible and compositional approach, 
plus, their semantic character means that, the criteria for strict positivity may 
be expressed in Epigram itself. 

In Epigram syntax, our finite set example looks like this: 


data 


n: Nat 

Fi:fi n : # 


where 


fz (sue n) 


_ i : Funjp . i 

18!: Fit* (sue n) 


As we have seen, this is readily represented as the least fixpoint of an indexed 
container. Indeed, any inductive family which Luo’s rules admit may be ex¬ 
pressed in this way. Luo admits inductive families IFam with a telescope [16] 
of indices, o : O, and constructors c,. Each constructor has a telescope of non¬ 
recursive arguments a and a some recursive arguments; each recursive argument 
fj has a telescope of parameters, h, allowing infinitary branching. We write 


data 


. 5: O 

IFam o : * 


where 


a-.Aj ••• f, : nh:H, r IFam r i:j 
c idf : IFam 


where neither the A, nor the H, : j may refer to IFam. In our setting, we can capture 
each dependent telescope x : X as an iterated A-type, EX. Luo’s rules fix a 
sum-of-tuples representation for both shapes and positions: a shape is a choice 
of constructor, then a tuple of non-recursive arguments; a position is a choice 
of recursive argument, then a tuple of branching parameters. IFam becomes the 
least fixpoint of [S', P, q, r] : C / EO —> C/EO where 

S = Ei.EAi P[(i, 3)] = Ej.EHij 

q {i, a) = (%) r ((*, a), [j, h)) = (fy) 

Choosing a container representation of datatypes adds no expressive power. 
Any least fixpoint of an indexed container [S', P, q, r] : C/(I + O) —> C/O can be 



turned into a clumsy but legitimate Epigram datatype: 


data F : |ndF*o °k ^ where 


s : S f :\/p:P[s]; i:I => r s p = \n\i—> F i 

g :Vp:P[s\; o:0 => r sp = \nr o —» Ind F o 
con s f g : Ind F (q s) 


Rather, one strength of the container approach is its modularity. Luo’s fixed 
format for strict positivity is somewhat conservative. It excludes, for example, 
the re-use of standard lists in the formation of rose trees, given by Tree = 
node(ListTree), and hence the re-use of library functionality. However, by broad¬ 
ening the notion of strictly positive operator to indexed containers in general, 
such convenient definitions become acceptable. 

Moreover, identifying data structures as containers gives us direct access to 
functionality and theorems for free. We certainly get their functoriality. We also 
gain useful predicate transformers lifting predicates $ from individual elements 
to containers of them, eg., ‘somewhere and ‘everywhere $’. From the pro¬ 
gramming side of the Curry-Howard correspondence, this is also very useful: if 
we are writing an interpreter for an embedded language, it is natural to define 
values as a family Value : Type —> *; if contexts are containers of Type, then 
everywhere Value equips them with a suitable notion of environment. 

Containers have a great deal of structure ripe for exploitation by functional 
programmers. The techniques of datatype generic programming [11] can be used 
to compute instances of programming patterns, given the structure of the data to 
which they are being applied. Where Generic Haskell [15] delivers this function¬ 
ality via a preprocessor, it is possible to model it via universes in a dependent 
type theory [12]. By identifying—and reflecting as data—the grammar of in¬ 
dexed containers (something similar to ISPTs above) to use as the basis for 
Epigram’s datatype definitions, we provide generic programming directly for 
Epigram itself, not just for an Epigram model of another type system. 

A striking example of generic programming is the derivative construction 
which lies at the heart of Huet’s ‘zipper’ representation of one-hole contexts 
in tree-like structures [27]. The generic construction, observed in [32] has been 
implemented in Generic Haskell [24], and in Epigram [35]. Our container based 
analysis [6] readily extends to indexed containers and hence dependent types. 
Where we had 


d(s:S< P[s]) = (s : 5 ; p : P[s] < Zp' : P[s].p' p) 
we now have V, taking an IC(/, O) container to an IC (I, O x I) container: 


V(S, P, q, r) = 


(s:S;p:P[s\, Sj/ : P[s\. p' ± p, \ 
\\{s,p). ( qs,r(s,p )), A((s,p),(p',_)).r (s,p'))J 


7.2 The Refinement Calculus 

In constructive type theory with a universe *, the contravariant powerset functor 
is defined as V(I) = I —> * and we often think of an element p of V(I) as a 



predicate over I such that p(i) is the type of proofs that p holds of i. Categor¬ 
ically, p corresponds to an object / : X —> I in the slice over I with the proofs 
that i holds being given by the fibre / [*]. Using this notation, we can now give a 
computational representation of monotone (because functorial) predicate trans¬ 
formers as in the refinement calculus of Back and von Wright [9,34]. A relation 
R : O —>V (/) between O and I determines two predicate transformers (R) and 
[ZZ], where 

(R), [iZ] : VI -> VO 
(R)(U)±{o:0\R(o)§U} 

[R](U) = {o:0\R(o)CU} 

Here U $ V is shorthand for (3*: I)U(i) RV(i), while C corresponds to fibrewise 
inclusion in the slice category interpretation. These are known as angelic and 
demonic nondeterministic update. When the relation happens to be the graph of 
a function / (that is, total and single valued), it is direct that (/) = [/] (where 
the coercion of a function to its graph is left implicit). This predicate transformer 
is just substitution along /, sometimes called a functional or deterministic pred¬ 
icate transformer (and used to model assignment). 

The key adjunction that relates these predicate transformers is 

(iZ op )U C y 

The adjunction above then immediately specialises to the familiar adjunctions 

3/ = </ OP H(-/)HV/ = [/ op ]. 

These modalities can be transferred directly into the framework of slice cat¬ 
egories in a locally cartesian closed category, in the following way. First, we may 
represent a relation from O and I as a span, which is to say a pair of mor- 
phisms O — X 1—► I sharing a common domain. In other terms, a span 
may be identified with a slice over the product O x I. Such a span determines 
two degenerate indexed containers, namely 



V \ \id V \ \ q 

II II 


The extensions of these containers may be computed by definition 5 and are 
respectively S q ■ A p and 17, • A v . The converse of a span O - P Xy .,$£■■ k — 
is obtained simply as I i At and then the key adjunction of the 

refinement calculus is S p ■ A q H II q ■ A p . To establish this, we need only find a 
natural bijection 

n q (A p )t 

This is immediate from the adjunctions Ef-\Af-\IIf. 



There is an immediate payoff for treating predicate transformers as indexed 
containers. The main normal form theorem in the refinement calculus ([10, Thm 
13.10]) says that any monotone predicate transformer can be expressed as the 
composition of an angelic after a demonic update, which is to say in the form 
(Q) ■ [77,]. So in fact, in the context of functors on slice categories of a locally 
cartesian closed category, we obtain a strengthened form of this theorem. Since 
(Q) and [ R] are extensions of indexed containers, so is their composite. Thus 
every monotone predicate transformer can be factored in the form (r op ) • [/°‘‘] ■ A q . 
That is, the relations used in the angelic and demonic updates may be chosen to 
be converse graphs of functions, with a third component which is a deterministic 
update. 

7.3 Imperative Interfaces and Container Drivers 

Notice that in definition 11 of container morphism, the input indices 7 and out¬ 
put sorts O are fixed, and we have a category IC(7, O). This is perfectly natural 
when the application for containers we have in mind is to represent data types or 
signatures over fixed spaces of input and output sorts. There is however another 
application to which containers and indexed containers may be put, namely to 
represent imperative interfaces, specifically command response interfaces. (This 
application has been explored in [22], [28], [23], and [21].) Then the indices repre¬ 
sent states, and the containers are used to represent coalgebras over state spaces. 
In such a setting, it is natural to investigate notions of morphism between con¬ 
tainers over different state spaces: between IC(J, O) and IC(J , ,0 / ), particularly 
when 1 = 0 and I' = O'. This reflects the fact that there may well be interfaces 
at higher or lower levels of abstraction reflected by the indexes. 

A command-response interface consists of a client or angel and a server or 
demon. The angel starts by issuing an instruction or command, that the demon 
commits or performs, returning a response. The structure used in [21] to rep¬ 
resent such an interface in constructive type theory is a quadruple (O. A, D, n), 
called an interaction structure where 

O : *, Current states 

A: O —> *, Command sets/shapes 

D : (77 o : O) A(o) —> *, Response sets/positions 

n : (77 o : 0,a : A(o)) D(o, a) —> O Next state function 

Replacing the use of universes with slices as mentioned at the beginning of section 
7.2 means that such an interaction structure is simply an indexed container 
(. A',D',q',r') : IC (0,0) where 

A' = So: O.A{o) q ' = 7To 

D'[(o,a)\ = D(o,a) r'((o,a),d) = n(o,a,d) 

Further, the predicate transformer V(0) —> V(0) induced by such an interaction 
structure, namely 

(A U) (A o) (Sa : A(o)) (77 d : D(o,a)) U(n(o,a,d)) 




is (when we translate to slices) simply the extension of the indexed container 
defined above. This translation of interaction structures into indexed containers 
gives the following translation between the ‘dynamic’ metaphor of commands 
and responses, and the ‘static’ metaphor of shapes and positions: 


static 

dynamic 

shape 

command 

position 

response 

. . finput 
index < 

state ( next + 

( output 

( current 


As an example of how the dynamic and static views of indexed containers 
can provide structure not apparent in the other, we consider a different notion of 
morphism from that already considered. Among predicate transformers between 
different sets we find pairs 

A : V(X) -* V(Y) D : V(Y) - V(X) 

such that A ■ D C 1 Y and lx C D ■ A. Then we call (A, D) a simulation pair, or 
adjoint pair, with A the lower and D the upper. As a lower adjoint, A commutes 
with unions, and so is determined with its values at singletons. It may therefore 
be identified with a relation Q = A - {_}: X —» V(Y). (The transformer A is in 
fact the relational image determined by Q, sometimes written (Q op ) in refinement 
calculus notation.) As an upper adjoint, D has the form [Q op ], where Q op denotes 
the transpose of Q. The part A as it were chooses a low-level encoding of a high- 
level state, while D suffers a choice of a high-level decoding of a low-level state. 

We take a morphism of indexed containers from h to l to be a simulation 
pair (A, D) such that h C D ■ l ■ A . This can be read: h can be implemented 
by letting the environment pick a low-level ‘encode’ state, running the low-level 
program, then picking a suitable high-level ‘decode’ state. This inclusion (natural 
transformation) can be expressed in any of the equivalent forms A ■ h C l ■ A, 
h ■ D C D ■ l, and A ■ h ■ D C l. (We leave implicit the semantic ‘extension’ 
operator.) 

We noted above that a simulation may be identified with a relation. It is 
shown in [21] that the relation representing a simulation between containers h 
and l which are homogeneous on H and L respectively is a coalgebra or post- 
fixed point for a certain container h —o l homogeneous on HL. When the con¬ 
tainers for the interfaces are given in the form of quadruples ( H , Af t . Df t , rih ) and 
(L, Ai, Di,ni) form, the container for the simulation has the following extension 

[/i^](Q)< S , S ')= S t : A h (s) - Ms 1 ) 
f : D t {sf) ■ t C D h (s) 
n a : A„(a) 

\d' : Di(s',t(a )) _ 

(Am, C)} 

This notion of simulation is known as “forward simulation” or “downward 
simulation” in the refinement calculus literature [17]. 



An interesting property of simulations concerns a notion of safety. Call U : 
V{S) safe (or an invariant) with respect to a predicate transformer F : V(S) —> 
V(S) if accompanied by a morphism U C F(U) in V{S). Then a simulation 
(which is itself a relation Q safe with respect to h—ol) maps an h- safe predicate 
U to the weakest /-safe predicate (Q)(U) necessary to guarantee U at the high 
level. 

The use of the symbol ‘—o’ for linear implication is not an accident. It turns 
out (see [29] for full details), that —o is right adjoint to the operator 0 between in¬ 
teraction structures, that can be considered to be a form of synchronous, or lock- 
step composition. Given interfaces ii(5i, /li,.Dt.m) and i 2 = (S 2 , A 2 , D 2 . n 2 ). 
their synchronous composition ij. 0% = (5, A, D, n) can be defined by 

S = Si x 5 a , 

^■(( s l> s 2)) = -^-l(si) X ^-2(32)5 

D(( Sl , S2}, (ai, 02)) = -Di(si, ai) x D 2 (s 2 , 02), 

n({si, s 2 ), (ai, a 2 ), (c/i, d 2 )) = (ni(si, ai, di)n 2 (s 2 , a 2 , d 2 )) 

Another word for simulation might be ‘driver’. In a operating system for a 
computer, there is usually a component of a type known as a driver. It’s task is 
to implement a generic device ‘driver’ interface, and simulate various instances 
of it using the specific device interfaces supplied by the manufacturers of the 
devices. For example, the driver interface supplied by a disk driver may be a 
linear array of disk blocks, while the interface supplied by the manufacturer of a 
specific disk device may be in terms of seeks, head switching, sector sparing, and 
so on. One way to understand this notion of implementation is as a simulation. 
This explains the word ‘driver’ that occurs in the heading of this subsection. 

As we have seen, interaction structures are indexed containers and hence 
this monoidal closed structure on interaction structures gives a monoidal closed 
structure on indexed containers. We hope in the future to find further examples 
of structure in either either the dynamic world of interaction structures or the 
static world of indexed families of datatypes that can be transported to the other 
world. 

8 Related Research 

There are many strands of research to which our paper is intimately connected. 
We comment on them but also explain where our work differs. 

Indexed containers have previously been considered by Hyland and Gambino un¬ 
der the name of dependent polynomials. They proved that the least fixed point 
of an indexed container is an inductive family which can be constructed by W- 
types. However, at a technical level our work goes beyond that by considering a 
wider class of least fixed points, by considering greatest fixed points, defining a 
grammar for indexed containers, defining morphisms and proving the associated 
representation theorem and giving the above mentioned collection of definable 





operations on indexed containers. 


Fiore’s work on generalised species extend indexed containers with certain struc¬ 
tural quotients. However, dealing with these quotients involves the use of sophis¬ 
ticated mathematical structure such as coends etc which makes the resulting 
theory rather inaccessible to the broader community. By focusing on indexed 
containers we obtain a much simpler theory which is nevertheless expressive in 
covering most datatypes which arise naturally. At a technical level, unlike gener¬ 
alised species, our theory of indexed containers is not restricted to the category 
of Sets, our grammar for container constructors is different from Fiore’s for gen¬ 
eralised species and our work on container morphisms is completely new. 


Perhaps the earliest publication about indexed containers (though not under that 
name) occurs in Petersson and Synek’s paper [36] from 1989. They present rules 
extending Martin-Lof’s type theory with a set constructor for ‘tree sets’ : families 
of mutually defined inductive sets, over a fixed index set. The context param- 
eterising this constructor is essentially a homogeneous indexed container.They 
give a number of interesting examples (particularly an application to formal 
grammar), and sketch a reduction of the tree set constructor to W-types. They 
do not consider any notion of morphism between contexts, nor a coinductive 
counterpart of their constructor. 


Inspired in part by Petersson and Synek’s constructor, Hancock, Hyvernat and 
Setzer applied indexed (and unindexed) containers, under the name ‘interac¬ 
tion structures’ to the task of modeling imperative interfaces such as command- 
response interfaces in a number of publications. However they worked in Martin- 
Lof type theory with a universe, rather than a categorical framework, exploiting 
the universe in an essential way. The thrust of this work was to develop in such 
a fully constructive (ie. predicative) analysis of predicate transformers. They 
presented a coinductive counterpart of Petersson and Synek’s constructor, and 
developed Moreover they considered a quite different notion of morphism be¬ 
tween indexed containers, related more to the notion of ‘forward simulation’ in 
the refinement calculus of Back and von Wright [9] and Morgan [34], as well as 
to the notion of approximable map in formal topology. To a large extent, the 
precise connection of this notion with the one described in this paper remains to 
be understood. Hyvernat in particular discovered a model of intuitionistic multi¬ 
plicative linear logic, which can be seen as a refinement of the relational model. 
Since linear phenomena also occur in the use of containers to model cursors in 
data structures [6], it may be interesting to gain a clear perspective on Hyver- 
nat’s analysis in the context of the differential calculus of indexed containers. 

Finally, although related to our work, most of the research detailed above is 
much more theoretical than ours and consequently less accessible to the broader 
computer science audience. Our motivations are more computational as demon¬ 
strated by our applications and hence we believe this paper has substantial merit 




in taking the developing theory of indexed containers and showing how it can 
be applied to more mainstream computer science. 

9 Conclusions and Further Work 

In this paper, we have shown that indexed containers provide a secure founda¬ 
tion, both type-theoretic and categorical for an expressive calculus in which to 
write and reason about a rich variety of datatypes. These comprise both induc¬ 
tively and coinductively defined families of types indexed over given datatypes. 
We have indicated, necessarily briefly, some applications to which we intend 
to apply this foundation. These are directly concerned with dependently typed 
programming. 

We see this paper as setting the foundations to develop these applications. 
We are currently using indexed continers as the basis for the system of datatypes 
in Epigram and hope, in particular, to use them to define generic programs in 
Epigram which can be applied to all indexed containers. We also want to further 
investigate the relationship with interaction structures, formal topology and the 
refinement calculus. Ordered indexed containers also seem a natural object of 
study - either for generic traversal algorithms or as the basis of a theory of well 
founded orders for data structures for use in, say, rewriting. Finally, the use of 
position sets as primitve in the definition of indexed containers makes us think 
there is a relation to implicit computational space complexity. 
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A The Internal Language 

In this conference paper we do not have the space to give a full definition of the 
internal language and so we give the basics and refer the reader to the literature 
for more details. Formally, the internal language links the extensional type the¬ 
ory MLW-EXT (see [7]) with finite types, IT'-types, a proof true / false but 
without universes to locally cartesian closed categories with disjoint coproducts 
and initial algebras of container functors in one variable. 

Categorically, we follow standard practise and represent an /-indexed family by 
an arrow / : X —> I of the slice over I which we think of mapping every element 
of X to its index. On the other hand, type theoretically, we represent an I- 
indexed family by a judgement i: I b X[i] Type. Substitution is a fundamental 
operation in both the categorical and type theoretic domains - if r : I' — * /, then 
the I' indexed family is computed categorically as the pullback A r f : A r X —> I' 
or type theoretically as i' : I' h X[fii']. Pullback along r extends categorically 
to a functor A r : C/I —+ C/1' and local cartesian closure implies that A. r has a 
left and right adjoint which we write E r and II r - these correspond to the X and 



II types in the type theory. Similarly, W-types in the type theory correspond 
exactly to the categorical construction of initial algebras of container functors. 
Disjoint coproducts are required to ensure that coproducts behave well categor¬ 
ically - formally the pullback of distinct coprojections into a coproduct is always 
the initial object 0. Well behaved coproducts are guaranteed automatically in 
the type theory. 

To translate from category theory to type theory we represent an /-indexed 
family / : X —> I type theoretically either as i : I h f[i] or as % : I \~ X[i] 
depending which is more meaningful in the context. These are often known 
as the fibres above i and are defined by f[i\ = X[i] = Ex : X.fx = i. The 
translations of A r , E r and 77 r can similarly be given as 

A r f \i' 1 = f[r i'\ 

E r f[{\ =Ei':r[I\.f\i'} 

n r f[i\ 

In the category of Sets, if B is an A indexed set, that is we have a set B(a) 
for every a £ A, then 

Sa : A.B = {(a,b)\a £ A,b £ B(a)} 

na:A.B={f : A ^ [j aeA B(a) |Va e A.f(a) £ B(a)} 

In the reverse direction we construct a category from the type theory with objects 
given by types and morphisms given by terms. A judgement i : I b X[i] is 
represented in the slice over I by the projection m : Ei : I.X[i] —> I with 
substitution interpreted as pullback and the type theoretic quantifiers E and II 
by their categorical counterparts. Full details of the use of internal languages to 
link type theory and its categorical semantics can be found in [37], [38], [25,26], 
[30] and [1]. 



